Security researchers have uncovered a novel tapjacking attack dubbed TapTrap, which exploits Android’s activity-transition animations to manipulate user interactions covertly.
Discovered in mid-2025, this zero-permission attack bypasses all existing overlay-based defenses implemented by Google since Android 6.0, posing a significant risk to millions of devices and a vast majority of apps on the Play Store, even on the latest Android 16.
https://cyberpress.org/taptrap-malware- ... roid-flaw/